[69337] in North American Network Operators' Group
Re: Anti-Spam Router -- opinions?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Tue Apr 6 14:44:20 2004
To: Joel Jaeggli <joelja@darkwing.uoregon.edu>
Cc: nanog@nanog.org
In-Reply-To: Your message of "Tue, 06 Apr 2004 11:02:41 PDT."
<Pine.LNX.4.44.0404061043570.1756-100000@twin.uoregon.edu>
From: Valdis.Kletnieks@vt.edu
Date: Tue, 06 Apr 2004 14:43:39 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_1043125265P
Content-Type: text/plain; charset=us-ascii
On Tue, 06 Apr 2004 11:02:41 PDT, Joel Jaeggli said:
> I sent more than 20 mails in the last hour. Given that I have a local mta
> each of those results in a seperate connection attempts to the machine I
OK. Make it 100, or make it "20 by default, user can ask for 100". Or
anything else like that. The *POINT* was that too often, a compromised
end-user machine can send *THOUSANDS* of messages. Not tens. Not
hundreds. Thousands.
Remember - if you're catching 1M spams/day, that means that the spammer
has to have a machines*rate product over 1M spams/day. If there's 10 billion
spams/day total, the total machines*rate product has to be over 10G. And
if there's only several million source machines, that means the rate has to be
in the thousands.
--==_Exmh_1043125265P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFAcvpbcC3lWbTT17ARAks4AKCE7GQQmroBuhvxOGyDWxrt1DU9cQCg5frj
l8Yx0+Ekn+RBw00PYQQ+Pq0=
=8otj
-----END PGP SIGNATURE-----
--==_Exmh_1043125265P--
